[LetsDefend Write-up] Java Shellcode
Tags
cmtmf-attack-pattern: | Process Injection |
attack-pattern: | Data Model Malware - T1587.001 Malware - T1588.001 Process Injection - T1631 Rundll32 - T1218.011 Process Injection - T1055 Rundll32 - T1085 |
Common Information
Type | Value |
---|---|
UUID | 5a45cf89-2d5a-438e-8759-69c85d08dfe7 |
Fingerprint | 2f1e0fa7aaba44d5 |
Analysis status | DONE |
Considered CTI value | 0 |
Text language | |
Published | Dec. 24, 2024, 1 p.m. |
Added to db | Dec. 24, 2024, 2:49 p.m. |
Last updated | Dec. 25, 2024, 12:26 p.m. |
Headline | [LetsDefend Write-up] Java Shellcode |
Title | [LetsDefend Write-up] Java Shellcode |
Detected Hints/Tags/Attributes | 13/2/7 |
Source URLs
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 167 | ✔ | Cybersecurity on Medium | https://medium.com/feed/tag/cybersecurity | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 2 | sun.arch.data |
|
Details | File | 821 | kernel32.dll |
|
Details | File | 2 | arch.dat |
|
Details | File | 11 | c:\\windows\\system32\\rundll32.exe |
|
Details | File | 1 | c:\\windows\\system32\\find.exe |
|
Details | File | 11 | c:\\windows\\system32\\notepad.exe |
|
Details | File | 1 | c:\\windows\\system32\\arp.exe |